Analysis, Definition and Insurance - Information Management Today

NYDFS issues significant guidance on insurers using AI or external data

Data Protection Report

FEBRUARY 2, 2024

On January 17, 2024 the New York Department of Financial Services (“NYDFS”) published a Proposed Insurance Circular Letter (“Proposed Circular”) regarding the use of artificial intelligence systems (“AIS”) and external consumer data and information sources (“ECDIS”) in insurance underwriting and pricing. Actual Actuarial Validity.

Insurance

Insurance Artificial Intelligence Risk Compliance

What Is Integrated Risk Management? Definition & Implementation

eSecurity Planet

APRIL 29, 2024

Integrated risk management identifies and eliminates unnecessary complexities to simplify risk analysis and threat control and introduces optimized operational performance as a potential side effect. Standardization makes data objective, quantifiable, and comparable across the organization to improve analysis and enable uniform decisions.

Risk

Risk Compliance Communications Insurance

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

For example, The Health Insurance Portability and Accountability Act (HIPAA) requires security features such as encryption to protect patients’ health information. Early text shift ciphers such as these proved effective until the development of text analysis techniques that could detect the use of the most commonly used letters (e, s, etc.).

Encryption

Encryption IT Passwords IoT

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

Regulatory Update: NAIC Summer 2022 National Meeting

Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. The Privacy Working Group has been reviewing state insurance privacy protections regarding the collection, ownership, use, and disclosure of information gathered in connection with insurance transactions.

Insurance

Insurance Paper Privacy Risk

Regulatory Update: NAIC Summer 2021 National Meeting

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. NAIC Adopts Revised Risk-Based Capital Bond Factors for Life Insurers.

Insurance

Insurance e-Delivery Paper Cybersecurity

Connecticut Tightens its Data Breach Notification Laws

Data Protection Report

OCTOBER 3, 2021

The amendment: Expands the definition of “personal information”; Shortens the notification deadline after discovery of a breach from 90 to 60 days; Removes the requirement to consult with law enforcement as part of a risk assessment; Deems compliant any person subject to and in compliance with HIPAA and HITECH; and.

Data breaches

Data breaches IT Insurance Passwords

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

Additional bills, amending the California Confidentiality of Medical Information Act (“CMIA”) and the California Insurance Code, also were also signed into law. The bill uses the same definition of “genetic data” as provided for in AB-825. Medical Data: CMIA and Californian Insurance Code Amendment Bill. Code Section 1798.81.5)

Privacy

Privacy Insurance Security Data breaches

Data Breaches and Cyber Attacks in October 2023 – 867,072,315 Records Breached

IT Governance

NOVEMBER 3, 2023

Our monthly blogs will provide analysis of the data we’ve collected and we’ll continue to discuss the biggest breaches on our 2023 overview of publicly disclosed data breaches and cyber attacks. This typically included conducting a forensic analysis to establish exactly what happened (often by engaging a third-party specialist).

Data breaches

Data breaches Insurance Ransomware Education

On Cyber Warranties

Schneier on Security

MARCH 26, 2020

Our preliminary analysis suggests the majority of cyber warranties cover the cost of repairing the device alone. Ambiguous definitions of the buyer's obligations and excluded events create uncertainty over what is covered. Our analysis has not touched upon the price of these products.

Marketing

Marketing Insurance Risk IT

Subject Access Request: Germany’s highest court widens the scope of data subject access requests in Germany

Data Protection Report

JULY 28, 2021

The defendant was a life insurance company and the claimant their insured. With regards to the scope of the data subject access right, the FCJ refers to the legal definition of personal data in Article 4(1) GDPR. In particular, the court held the following: No requirement of “essential biographical information”.

Access

Access GDPR Personal data Insurance

Have board directors any liability for a cyberattack against their company?

Security Affairs

NOVEMBER 14, 2022

Add to that, there is the risk of penalties and fines (which are not insurable in most jurisdictions) not only under privacy and data protection regulations but also on the basis of cybersecurity regulations that are now proliferating. Beyond the regulatory reporting requirements, reporting a cyberattack to the public is definitely tricky.

Insurance

Insurance Risk Ransomware Encryption

Regulatory Update: NAIC Summer 2020 National Meeting

Data Matters

SEPTEMBER 3, 2020

The National Association of Insurance Commissioners (NAIC) held its Summer 2020 National Meeting (Summer Meeting) from July 27 to August 14, 2020. NAIC Considers Comments to the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act . GCC Template and Instructions.

Insurance

Insurance Paper Artificial Intelligence Big data

9 cyber security predictions for 2022

IT Governance

FEBRUARY 15, 2022

Cyber insurance will become more popular and more comprehensive. It’s led to a growing trend for organisations to purchase cyber insurance, which Forbes contributor Emil Sayegh believes will continue in 2022. This market squeeze will certainly affect the cyber insurance industry itself. “We

Security

Security Insurance Authentication Passwords

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Hunton Privacy

JUNE 22, 2020

The amendments to Vermont’s Security Breach Notice Act include expanding the definition of Personally Identifiable Information (“PII”), expanding the definition of a breach to include login credentials and narrowing the permissible circumstances under which substitute notice may be used.

Data breaches

Data breaches Privacy Education Data Privacy

Four Use Cases Proving the Benefits of Metadata-Driven Automation

erwin

FEBRUARY 7, 2019

That’s time needed and better used for data analysis. The banking, financial services and insurance industry typically deals with higher data velocity and tighter regulations than most. Metadata-Driven Automation in the Insurance Industry. Metadata-Driven Automation in the BFSI Industry.

Metadata

Metadata Healthcare Insurance Financial Services

Regulatory Update: NAIC Spring 2019 National Meeting

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. Other notable revisions include the following: The definition of “Reciprocal Jurisdiction” was broadened to include U.S. This post summarizes the highlights from this meeting.

Insurance

Insurance Blockchain Big data Risk

RSAC insights: CyberGRX finds a ton of value in wider sharing of third-party risk assessments

The Last Watchdog

MAY 10, 2021

Back in the mid-1990s, big banks and insurance companies came up with something called “bespoke assessments” as the approach for assessing third party vendor risk. I came away from my discussion with Kneip encouraged that the answer is definitely, yes. This took the form of programmatic audits.

Risk

Risk Insurance Access Security

Ready to Test: Introducing the Collibra Adaptive Data and Analytics Governance Test Drive

Collibra

JUNE 1, 2022

Documenting definitions and ownership, certifying data assets, and capturing crowdsourced feedback, so users feel confident in using the data and empowered to make business decisions. . can map code sets for hospital billing to insurance/medicare codes). Source: Foundry , formerly IDG.

Analytics

Analytics Government Compliance Metadata

Regulatory Update: NAIC Fall 2020 National Meeting

Data Matters

DECEMBER 28, 2020

The National Association of Insurance Commissioners (NAIC) held its Fall 2020 National Meeting (Fall Meeting) December 3-9, 2020. NAIC Adopts the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act. Insurance groups will be exempt from filing a GCC if. groups to non-U.S.

Insurance

Insurance Paper Risk Analytics

Regulatory Update: NAIC Summer 2019 National Meeting

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. NAIC Evaluating Definition of “Best Interest” to Determine Whether to Impose Such a Standard in the Suitability in Annuity Transactions Model Regulation.

Insurance

Insurance Paper Risk Analytics

Digital Health Industry Take Note: New HIPAA Comment Opportunity and Guidance Addresses Growing Risk of Cybersecurity Attacks

Data Matters

MAY 6, 2022

Digital health companies should take note of new data privacy and security developments under the Health Insurance Portability and Accountability Act (HIPAA) that can affect product planning and customer negotiations. What is Digital Health? implement stronger authentication solutions, such as multifactor authentication.

Risk

Risk Cybersecurity Insurance Authentication

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Only 1 definitely hasn’t had data breached. Publicly disclosed data breaches and cyber attacks: in the spotlight Eye4Fraud database allegedly leaked – 14.9

Data Privacy

Data Privacy Privacy Insurance Security

Regulatory Update: NAIC Summer 2018 National Meeting

Data Matters

AUGUST 24, 2018

The National Association of Insurance Commissioners (NAIC) held its Summer 2018 National Meeting in Boston, Massachusetts, from August 4 to 7, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data . The NAIC is also considering insurers’ use of big data in underwriting life insurance products.

Insurance

Insurance Big data e-Delivery Risk

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

IT Governance

DECEMBER 5, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Only 3 definitely haven’t had data breached. Welcome to this week’s round-up of the biggest and most interesting news stories. Organisation name Sector Location Data exfiltrated?

Data Privacy

Data Privacy Privacy Manufacturing Retail

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA). Healthcare Data Privacy Laws. Health data and patient data in the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

Regulatory Update: NAIC Fall 2019 National Meeting

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. NAIC Advances Accreditation Standard Process for Revised Credit for Reinsurance Model Law and Regulation, and Term and Universal Life Insurance Reserve Financing Model Regulation.

Insurance

Insurance Risk Artificial Intelligence Privacy

Regulatory Update: NAIC Fall 2019 National Meeting

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. NAIC Advances Accreditation Standard Process for Revised Credit for Reinsurance Model Law and Regulation, and Term and Universal Life Insurance Reserve Financing Model Regulation.

Insurance

Insurance Risk Artificial Intelligence Privacy

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity

Cybersecurity Privacy Insurance Risk

Measure Twice, Cut Once: How the Right Data Modeling Tool Drives Business Value

erwin

JUNE 27, 2019

Additional challenges, such as increasing regulatory pressures – from the General Data Protection Regulation (GDPR) to the Health Insurance Privacy and Portability Act (HIPPA) – and growing stores of unstructured data also underscore the increasing importance of a data modeling tool. Perform impact analysis.

Unstructured data

Unstructured data Metadata Analytics GDPR

Comments Sought on Proposed Rulemaking: Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

Data Matters

DECEMBER 23, 2020

Federal Deposit Insurance Corporation (FDIC) approved and the federal banking agencies jointly announced on December 18 a notice of proposed rulemaking, Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers (NPR). Definition of Subject Entities: .

Security

Security Cybersecurity Insurance Communications

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Only 3 definitely haven’t had data breached. Incorporated Source (Update) Insurance USA Yes 7,361 Advantis Global, Inc. Organisation name Sector Location Data exfiltrated?

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

The Week in Cyber Security and Data Privacy: 1 – 7 April 2024

IT Governance

APRIL 9, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Other databases contained health insurance data, such as patents’ names, dates of birth, addresses and medical data. Only 2 definitely haven’t had data breached.

Data Privacy

Data Privacy Privacy Security Manufacturing

Regulatory Update: NAIC Fall 2018 National Meeting

Data Matters

DECEMBER 11, 2018

The National Association of Insurance Commissioners (NAIC) held its Fall 2018 National Meeting (Fall Meeting) in San Francisco, California, from November 15 to 18, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data. systemic risk of insurers with other parts of the financial system, notably the banking.

Insurance

Insurance Paper Risk Big data

34 Most Common Types of Network Security Protections

eSecurity Planet

MARCH 17, 2023

XDR is often considered an evolution of EDR, moving beyond endpoint data analysis and threat response to look at telemetry data across clouds, applications, servers, third-party resources, and other network components. Many of these tools protect resources connected to networks, thus shutting down threats as early as possible.

Security

Security Encryption Analytics Cloud

Data Mapping Tools: What Are the Key Differentiators

erwin

MARCH 14, 2019

analysis) are now adopting data mapping tools with compliance in mind. Those organizations investing in data mapping tools with compliance as the main driver will definitely want to consider this opportunity and have it influence their decision as to which data mapping tool to adopt. FOUR INDUSTRY FOCUSSED. Therefore, changes (e.g.,

Metadata

Metadata GDPR Digital transformation Compliance

New York hospitals have new cybersecurity requirements

Data Protection Report

OCTOBER 23, 2024

The regulation includes elements of both the Health Insurance Portability and Accountability Act (HIPAA) and the New York Department of Financial Services (NYDFS) cybersecurity regulation. Therefore, covered hospitals may need to revise their risk analysis and management process to comply with the new regulation.

Cybersecurity

Cybersecurity Risk Access Financial Services

Arizona Amends Data Breach Notification Law

Hunton Privacy

MAY 24, 2018

The amended law also broadens the definition of personal information and requires regulatory notice and notice to the consumer reporting agencies (“CRAs”) under certain circumstances. Key provisions of the amended law include: Definition of Personal Information.

Data breaches

Data breaches Passwords Authentication Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Only 1 definitely hasn’t had data breached. Welcome to this week’s round-up of the biggest and most interesting news stories. Organisation(s) Sector Location Data breached?

Data Privacy

Data Privacy Privacy Manufacturing Security

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

Data Matters

APRIL 10, 2020

Here are some of the highlights from the AG’s March 2020 revisions to the proposed regulations: Removal of guidance about the interpretation of CCPA definitions (§ 999.302 in the February 2020 proposed regulations). through their websites) to a particular consumer or household.

Privacy

Privacy Sales Insurance Compliance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

How to handle a ransomware attack

IBM Big Data Hub

JANUARY 22, 2024

The photo will expedite the recovery process and help when filing a police report or a possible claim with your insurance company. This will save all data in memory to a reference file on the device’s hard drive, preserving it for future analysis. Instead, put the affected systems into hibernation.

Ransomware

Ransomware Encryption Analytics Data breaches

Data Intelligence and Its Role in Combating Covid-19

erwin

MARCH 30, 2020

Privately it will come from hospitals, labs, pharmaceutical companies, doctors and private health insurers. These numerous data types and data sources most definitely weren’t designed to work together. Data lineage to support impact analysis. As a result, the data may be compromised, rendering faulty analyses and insights.

Metadata

Metadata IT Government Healthcare

NYDFS issues significant guidance on insurers using AI or external data

What Is Integrated Risk Management? Definition & Implementation

Webinars

Trending Sources

What Is Encryption? Definition, How it Works, & Examples

Webinars

Regulatory Update: NAIC Summer 2022 National Meeting

Regulatory Update: NAIC Summer 2021 National Meeting

Connecticut Tightens its Data Breach Notification Laws

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Data Breaches and Cyber Attacks in October 2023 – 867,072,315 Records Breached

On Cyber Warranties

Subject Access Request: Germany’s highest court widens the scope of data subject access requests in Germany

Have board directors any liability for a cyberattack against their company?

Regulatory Update: NAIC Summer 2020 National Meeting

9 cyber security predictions for 2022

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Four Use Cases Proving the Benefits of Metadata-Driven Automation

Regulatory Update: NAIC Spring 2019 National Meeting

RSAC insights: CyberGRX finds a ton of value in wider sharing of third-party risk assessments

Ready to Test: Introducing the Collibra Adaptive Data and Analytics Governance Test Drive

Regulatory Update: NAIC Fall 2020 National Meeting

Regulatory Update: NAIC Summer 2019 National Meeting

Digital Health Industry Take Note: New HIPAA Comment Opportunity and Guidance Addresses Growing Risk of Cybersecurity Attacks

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

Regulatory Update: NAIC Summer 2018 National Meeting

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

Security Compliance & Data Privacy Regulations

Regulatory Update: NAIC Fall 2019 National Meeting

Regulatory Update: NAIC Fall 2019 National Meeting

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

Measure Twice, Cut Once: How the Right Data Modeling Tool Drives Business Value

Comments Sought on Proposed Rulemaking: Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

The Week in Cyber Security and Data Privacy: 1 – 7 April 2024

Regulatory Update: NAIC Fall 2018 National Meeting

34 Most Common Types of Network Security Protections

Data Mapping Tools: What Are the Key Differentiators

New York hospitals have new cybersecurity requirements

Arizona Amends Data Breach Notification Law

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

How to handle a ransomware attack

Data Intelligence and Its Role in Combating Covid-19

Stay Connected